Vulnerability Name: CVE-2013-2718 (CCN-84214) Assigned: 2013-05-14 Published: 2013-05-14 Updated: 2017-09-19 Summary: Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2719 , CVE-2013-2720 , CVE-2013-2721 , CVE-2013-2722 , CVE-2013-2723 , CVE-2013-2725 , CVE-2013-2726 , CVE-2013-2731 , CVE-2013-2732 , CVE-2013-2734 , CVE-2013-2735 , CVE-2013-2736 , CVE-2013-3337 , CVE-2013-3338 , CVE-2013-3339 , CVE-2013-3340 , and CVE-2013-3341 . CVSS v3 Severity: 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H )Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): ChangedImpact Metrics: Confidentiality (C): HighIntegrity (I): HighAvailibility (A): High
CVSS v2 Severity: 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C )7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAuthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C )6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
6.8 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P )5.0 Medium (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAuthentication (Au): NoneImpact Metrics: Confidentiality (C): PartialIntegrity (I): PartialAvailibility (A): Partial
Vulnerability Type: CWE-119 Vulnerability Consequences: Gain Access References: Source: MITRE Type: CNACVE-2013-2718 Source: SUSE Type: UNKNOWNSUSE-SU-2013:0809 Source: CCN Type: RHSA-2013-0826Critical: acroread security update Source: REDHAT Type: UNKNOWNRHSA-2013:0826 Source: CCN Type: SA53420Adobe Reader / Acrobat Multiple Vulnerabilities Source: GENTOO Type: UNKNOWNGLSA-201308-03 Source: CCN Type: Adobe Product Security Bulletin APSB13-15Security updates available for Adobe Reader and Acrobat Source: CONFIRM Type: Patch, Vendor Advisoryhttp://www.adobe.com/support/security/bulletins/apsb13-15.html Source: CCN Type: BID-59902Adobe Acrobat and Reader CVE-2013-2718 Unspecified Memory Corruption Vulnerability Source: XF Type: UNKNOWNadobe-cve20132718-code-exec(84214) Source: OVAL Type: UNKNOWNoval:org.mitre.oval:def:16742 Source: CCN Type: WhiteSource Vulnerability DatabaseCVE-2013-2718 Vulnerable Configuration: Configuration 1 :cpe:/a:adobe:acrobat_reader:9.0:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.1.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.1.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.1.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.3.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.3.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.3.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.3.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.5:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.6:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.4.7:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.5:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.5.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.5.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.5.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.5.4:*:*:*:*:*:*:* Configuration 2 :cpe:/a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.0.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.0.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.0.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1.5:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:10.1.6:*:*:*:*:*:*:* Configuration 3 :cpe:/a:adobe:acrobat_reader:11.0:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:11.0.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:11.0.2:*:*:*:*:*:*:* Configuration 4 :cpe:/a:adobe:acrobat:9.0:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.0:-:pro:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1:-:pro:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1.1:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.1.3:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.2:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3:-:pro:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.1:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.2:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.3.4:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.1:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.2:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.3:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.4:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.5:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.5:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.6:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.6:-:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.4.7:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.5:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.5.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.5.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.5.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.5.4:*:*:*:*:*:*:* Configuration 5 :cpe:/a:adobe:acrobat:10.0:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.0:-:pro:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.0.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.0.1:-:pro:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.0.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.0.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1.2:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1.5:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:10.1.6:*:*:*:*:*:*:* Configuration 6 :cpe:/a:adobe:acrobat:11.0:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:11.0.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:11.0.2:*:*:*:*:*:*:* Configuration RedHat 1 :cpe:/a:redhat:rhel_extras:6:*:*:*:*:*:*:* Configuration RedHat 2 :cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/a:adobe:acrobat_x:10.0.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_x:10.1:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_x:10.1.3:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat_reader:9.5.4:*:*:*:*:*:*:* OR cpe:/a:adobe:acrobat:9.5.4:*:*:*:*:*:*:* AND cpe:/o:redhat:enterprise_linux_server_supplementary:6:*:*:*:*:*:*:* OR cpe:/o:redhat:enterprise_linux_workstation_supplementary:6:*:*:*:*:*:*:* OR cpe:/o:redhat:enterprise_linux_desktop_supplementary:6:*:*:*:*:*:*:* Denotes that component is vulnerable Oval Definitions Definition ID Class Title Last Modified oval:org.opensuse.security:def:20132718 V CVE-2013-2718 2021-06-25 oval:org.mitre.oval:def:20740 P RHSA-2013:0826: acroread security update (Critical) 2015-03-09 oval:org.mitre.oval:def:25336 P SUSE-SU-2013:0809-1 -- Security update for Acrobat Reader 2014-09-08 oval:org.mitre.oval:def:23771 P ELSA-2013:0826: acroread security update (Critical) 2014-05-26 oval:org.mitre.oval:def:16742 V Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, CVE-2013-3340, and CVE-2013-3341 2013-07-08 oval:com.ubuntu.precise:def:20132718000 V CVE-2013-2718 on Ubuntu 12.04 LTS (precise) - medium. 2013-05-16 oval:com.redhat.rhsa:def:20130826 P RHSA-2013:0826: acroread security update (Critical) 2013-05-15
BACK
adobe acrobat reader 9.0
adobe acrobat reader 9.1
adobe acrobat reader 9.1.1
adobe acrobat reader 9.1.2
adobe acrobat reader 9.1.3
adobe acrobat reader 9.2
adobe acrobat reader 9.3
adobe acrobat reader 9.3.1
adobe acrobat reader 9.3.2
adobe acrobat reader 9.3.3
adobe acrobat reader 9.3.4
adobe acrobat reader 9.4
adobe acrobat reader 9.4.1
adobe acrobat reader 9.4.2
adobe acrobat reader 9.4.3
adobe acrobat reader 9.4.4
adobe acrobat reader 9.4.5
adobe acrobat reader 9.4.6
adobe acrobat reader 9.4.7
adobe acrobat reader 9.5
adobe acrobat reader 9.5.1
adobe acrobat reader 9.5.2
adobe acrobat reader 9.5.3
adobe acrobat reader 9.5.4
adobe acrobat reader 10.0
adobe acrobat reader 10.0.1
adobe acrobat reader 10.0.2
adobe acrobat reader 10.0.3
adobe acrobat reader 10.1
adobe acrobat reader 10.1.1
adobe acrobat reader 10.1.2
adobe acrobat reader 10.1.3
adobe acrobat reader 10.1.4
adobe acrobat reader 10.1.5
adobe acrobat reader 10.1.6
adobe acrobat reader 11.0
adobe acrobat reader 11.0.1
adobe acrobat reader 11.0.2
adobe acrobat 9.0
adobe acrobat 9.0 -
adobe acrobat 9.1
adobe acrobat 9.1 -
adobe acrobat 9.1.1
adobe acrobat 9.1.1 -
adobe acrobat 9.1.2
adobe acrobat 9.1.3
adobe acrobat 9.1.3 -
adobe acrobat 9.2
adobe acrobat 9.2 -
adobe acrobat 9.3
adobe acrobat 9.3 -
adobe acrobat 9.3.1
adobe acrobat 9.3.1 -
adobe acrobat 9.3.2
adobe acrobat 9.3.2 -
adobe acrobat 9.3.3
adobe acrobat 9.3.4
adobe acrobat 9.3.4 -
adobe acrobat 9.4
adobe acrobat 9.4.1
adobe acrobat 9.4.1 -
adobe acrobat 9.4.2
adobe acrobat 9.4.2 -
adobe acrobat 9.4.3
adobe acrobat 9.4.3 -
adobe acrobat 9.4.4
adobe acrobat 9.4.4 -
adobe acrobat 9.4.5
adobe acrobat 9.4.5 -
adobe acrobat 9.4.6
adobe acrobat 9.4.6 -
adobe acrobat 9.4.7
adobe acrobat 9.5
adobe acrobat 9.5.1
adobe acrobat 9.5.2
adobe acrobat 9.5.3
adobe acrobat 9.5.4
adobe acrobat 10.0
adobe acrobat 10.0 -
adobe acrobat 10.0.1
adobe acrobat 10.0.1 -
adobe acrobat 10.0.2
adobe acrobat 10.0.3
adobe acrobat 10.1
adobe acrobat 10.1.1
adobe acrobat 10.1.2
adobe acrobat 10.1.3
adobe acrobat 10.1.4
adobe acrobat 10.1.5
adobe acrobat 10.1.6
adobe acrobat 11.0
adobe acrobat 11.0.1
adobe acrobat 11.0.2
adobe acrobat x 10.0.3
adobe acrobat x 10.1
adobe acrobat x 10.1.3
adobe acrobat reader 9.5.4
adobe acrobat 9.5.4
redhat enterprise linux server supplementary 6
redhat enterprise linux workstation supplementary 6
redhat enterprise linux desktop supplementary 6